DE10316778A1 - Method and device for improving the security of data - Google Patents

Abstract

One method includes generating data with an imaging system in response to a request from an information source and decrypting encrypted information received from the information source using the imaging system and at least a portion of the data to form decrypted information. In addition, the method includes forming a second hash from the decrypted information using the imaging system. The method further includes generating an image on a medium using the decrypted information if the second hash value, if the second hash value is equal to a first hash value, received from the information source.

Description

Sometimes a user wants an image of a document or an image using a communication channel, that is not certain to generate on a medium. The Communication channel could e.g. B. a wireless connection local area network or a wide array network, such as e.g. B. that Internet, include. Data that define the image are about the communication channel for generating the image to a Imaging device, such as. B. a fax machine Copier, plotter or a printer. At a Try to make sure the information in the Document or picture not by an unauthorized person could be considered, the user Encryption techniques regarding the data defining the image, use. In some cases, however, you can encrypted information during its transmission copied over the communication channel and to a later one Time will be forwarded, cause a unauthorized person has access to the information. Improved techniques for the delivery of data about Communication channels on imaging devices improve that Safety.

It is the object of the present invention to provide a system a method, an image forming apparatus, a Storage device or a printer to create the case a transmission of sensitive information about Communication channels offer greater security.

This object is achieved by a system according to claim 1, 23 or 24, a method according to claim 8, a An image forming apparatus according to claim 19, one A storage device according to claim 28 or a printer according to claim 33 solved.

One method involves generating data with a Imaging system in response to a request from an information source and decrypting encrypted information from the information source are received using the imaging system and decrypted at least part of the data Form information. In addition, the process includes forming a second hash from the decrypted ones Information using the imaging system. The method further includes generating an image a medium using the decrypted Information if the second hash value equals a first hash Value received from the information source.

Preferred embodiments of the present invention are referred to below with reference to the enclosed Drawings explained in more detail. Show it:

Fig. 1A is a simplified block diagram of an embodiment of the safety system;

1B is a block diagram of high-level of an embodiment of a computing device.

1C is a block diagram of high-level of an embodiment of an image forming apparatus.

Fig. 1D is a schematic representation of an embodiment of the safety system;

Figs. 2A and 2B is a high level flow chart of a first method of using the embodiment of the safety system;

Figs. 3A and 3B, a high level flow chart of a second method for using the embodiment of the safety system;

4A and 4B are a high level flow chart of a third method of using the Ausführungsbei game of the security system.

Fig. 5A and 5B, a high level flow chart of a fourth method of using the embodiment of the safety system; and

Fig. 6 shows an embodiment of a computer readable medium.

It should be recognized that embodiments of the Security system through software or firmware that is executed on a processing device, can be implemented. The processing device can a general purpose processor, such as B. a microprocessor, include. Alternatively, the processing device can be a Include hardware that is designed specifically for the task is how B. an application-specific integrated Circuit. In addition, the processing device, which is used to implement embodiments of the Security system to execute in a computing device, such as z. B. a universal computer, or in a Imaging device, such as. B. an inkjet printer or an electrophotographic printer.

Is shown in Fig. 1A is a simplified block diagram of an embodiment of the safety system. An information source 100 represents a device capable of providing data defining an image. The information source 100 could be a wireless device, such as a wireless device. B. include a personal digital assistant, a server or a portable computer, a mobile phone or another embodiment of a computing device. A system 101 is arranged to receive the information provided by the information source 100 . One embodiment of an imaging system, system 101 , includes an imaging device 102 . The imaging device 102 is configured to receive the information provided by the information source 100 corresponds to the image to be generated. The imaging device 102 could include a printer, copier, plotter, fax machine, all-in-one device, or the like. The information provided by the information source 100 is received by the imaging device 102 over a communication channel 104 . Imaging device 102 either receives the information directly, or could receive the information from another device, such as a mobile device. B. a computing device, which may be included in the system 101 . The computing device could be a network server or a personal computer, e.g. B. include a computer 106 . The functions performed by the security enhancement system 101 could be performed in the imaging device 102 , in the computer 106 (if included in the system 101 ), or a performance of these functions could be shared between the imaging device 102 and the computer 106 . Fig. 1 illustrates this alternative ways is by the dashed lines connecting the communication channel 104 with the computer 106 and the image forming device 102. Communication channel 104 could be any communication channel that can be monitored to collect information about the data transmitted over the communication channel. A digital or analog wireless communication channel would be e.g. B. not sure because the information transmitted over the communication channel could be monitored. Or the Internet would be a communication channel that is not secure because it could be used to monitor information transmitted.

Is shown in Fig. 1B is a simplified block diagram of an embodiment of the computer 106, which could be configured to be included in an embodiment of the safety system. An embodiment of a processing device, such as. B. a processor 108 , is coupled to an embodiment of a memory device, a memory 110 . Processor 108 executes firmware or software that is retrieved from memory 110 to perform the functions in the embodiment of the security system. The processor 108 could e.g. B. include a microprocessor or an ASIC.

Is shown in Fig. 1C is a simplified block diagram of an embodiment of an image forming apparatus, the image forming apparatus 102, the images can generate media. The imaging device 102 could be configured to be included in one embodiment of the security system. The image forming device 102 can be a color or a single color ink jet printer, other types of printers such as e.g. For example, include electrophotographic color or monochrome printers, fax machines, digital copiers, dot matrix printers, or any device that can produce an image on a medium. The imaging device 102 may be configured to generate images at 300 dpi, 600 dpi, 1200 dpi, or other resolutions. A printer driver program that can be executed in the information source 100 converts the data (corresponding to the image) received by the application program into a form that can be used by the image forming device 102 , such as, e.g. B. a file in page description language (PDL). The PDL file can e.g. For example, include a file defined in a PCL-3 or PCL-5 format by Hewlett-Packard.

The imaging device 102 edits the PDL file to generate pixel data for each pixel of the image. An embodiment of the image forming device 102 z. B. can generate pixel data for color values for pixels that form the cyan, magenta, yellow, and black color planes. For this embodiment, the color values for each of the pixels in the color planes could e.g. B. vary from 0 to 255. A halftoning operation can be performed on the color values of the color planes to produce halftone data for the image. The halftone data may include binary data specifying whether or not a colorant is placed on the pixel for each of the pixels in each of the color planes. Alternatively, the image can be created using the pixel data for each of the pixels without halftoning. For this alternative, the amount of colorant placed on the pixel is directly related to the pixel data for the pixel. For an ink jet printer, the amount of colorant is controlled by the number of drops of ink placed on the region of the media that corresponds to the pixel. For an electrophotographic printer, the amount of colorant is controlled by the fractional portion of the region on the photoconductor that corresponds to the pixel that is being exposed and developed.

Included in the embodiment of the imaging device 102 is an embodiment of an imaging mechanism, the imaging mechanism 112 . The imaging mechanism 112 includes the hardware necessary to place colorants (which may include black toner or black ink) on a medium. In the case of an electrophotographic printer e.g. For example, the imaging mechanism 112 may include a photoconductor, developing devices for developing toner (the colorants in this embodiment of the imaging mechanism 112), a photoconductor exposure system for forming a latent electrostatic image on the photoconductor, a charger for charging the photoconductor, a transfer device for transferring toner from the photoconductor to a medium and a fixing device for fixing the toner on the medium. An embodiment of a controller, such as. B. a controller 112 which is coupled to the image forming mechanism 112 controls the placement of colorant on a medium by the image forming mechanism 112th The output signal from the printer driver software executing in the information source 100 is passed through the interface 116 to the controller 114 . Controller 114 includes the ability to edit the PDL file received from information source 100 to generate pixel data for each of the pixels that form the image. The controller 114 includes an embodiment of a processing device, such as. The processor 118 configured to run firmware or software, or an application specific integrated circuit (ASIC) for controlling the placement of colorant by the imaging mechanism 112 on the medium. In addition, controller 114 includes an embodiment of a memory device, such as a memory device. B. a memory 120 for storing the pixel data.

Further details regarding embodiments of Imaging mechanisms used in electrophotographic Imaging devices are used in the U.S. Patent No. 5,291,251 entitled IMAGE DEVELOPMENT AND TRANSFER APPARATUS WHICH UTILIZED AN INTERMEDIATE TRANSFER FILM, issued to Storlie u. a., the Hewlett Packard Company assigned and U.S. Patent No. 5,314,774 entitled METHOD AND APPARATUS FOR DEVELOPING COLOR IMAGES USING DRY TONERS AND AN INTERMEDIATE TRANSFER MEMBER issued to Camis and the Hewlett-Packard Company assigned to find. Each of these two patents is in its entirety by reference to this specification added.

In the case of an ink jet printer, the imaging mechanism 112 may include an ink cartridge movably attached to a carriage, its position being precisely controlled by a belt driven by a stepper motor. An ink cartridge driver circuit, coupled to the controller and the ink cartridge, fires nozzles in the ink cartridges based on signals received from the controller to place colorant on the medium in accordance with the pixel data for the pixels forming each of the color planes , Further details regarding embodiments of imaging mechanisms used in ink jet printers are assigned in U.S. Patent No. 6,082,854 entitled MODULAR INK-JET HARD COPY APPARATUS AND METHODOLOGY, issued to Axtell et al. And the Hewlett-Packard Company, and US - Patent No. 5,399,039 entitled INK-JET PRINTER WITH PRECISE PRINT ZONE MEDIA CONTROL, issued to Giles et al. And assigned to the Hewlett-Packard Company. Each of these two patents is incorporated in its entirety by reference into this specification.

Typically, the device that sends the information would be over a communication channel, such as. B. Communication channel 104 to perform certain encryption operations in an attempt to prevent the information, even if it is being monitored, from being understood by the monitoring party. However, as will become apparent from the discussion below, simply encrypting the information provided over the communication channel cannot sufficiently reduce the likelihood that the information is not understood by a party for whom it is not intended. Consider the case where the primary security measure is encryption of the information as it is transmitted over the communication channel, followed by decryption and imaging in the receiving imaging device. If a party monitoring the communication channel is able to record the information transmitted by the device and later to relay this information over the communication channel, another copy of the image to which the information corresponds could be on of the receiving image forming device. If the monitoring party has access to this imaging device, it could have access to the unencrypted information. This technique of gaining access to information is a type of playback attack.

To reduce the likelihood that this type of Playback attack is successful, can be a type of Session identifiers are used. On Session identifier acts as a marker that the Imaging device during an attempted playback attack indicates that those supplied in the playback attack Information associated with a previous imaging operation were the delivery of secure information has included. By using a session, the Detect imaging device when a Playback attack is underway, and take the appropriate action. The appropriate action could e.g. B. a meeting of Countermeasures against playback attacks after detection of the Playback attack include. Or the appropriate action could be a gathering of information about the entity that executing playback attacks. Or that appropriate action could be a non-response to the attempt include performing the imaging operation, thereby making a time due to performing the unauthorized imaging operation is lost, as well as the Cost of the medium that would have been used saved become.

Is shown in Fig. 1D is a schematic representation of the operation of an embodiment of the safety system, which a basic description of the operation of embodiments of the safety system is included for purposes of providing. In this embodiment, a portable computer 122 requests a laser printer 124 to perform a print job. Depending on the implementation of the embodiment of the security system, the request may include information related to a set of information that defines the image sent by the portable computer 122 to perform the print job. In response to this request, laser printer 124 generates a session identifier associated with the request from portable computer 122 . Laser printer 124 sends this session identifier (which may or may not be encrypted depending on the characteristics of the session identifier) to portable computer 122 . Using this session identifier, portable computer 122 encrypts the information that defines the image. In addition, the portable computer 122 determines a hash of the information. The portable computer 122 sends the hash of the information and the encrypted information to the laser printer 124 . Laser printer 124 decrypts the encrypted information and determines a hash of the information. Then, laser printer 124 compares the hash value that it has determined with the hash value that is received by portable computer 122 . If the hash values are equivalent, laser printer 124 executes the print job using the decrypted information. If the hash values are not equivalent, the information is discarded. Since the encryption of the information is performed using the session identifier generated by the laser printer 124 and associated with the request to perform a print job, the vulnerability of the laser printer 124 to playback attacks is reduced.

As shown in FIGS. 2A and 2B is a high level flow chart which corresponds to an operation of embodiments of the security system. First, in step 200, an information source sends a request to perform an imaging operation through a communication channel to an embodiment of an imaging system used to perform the imaging operation. In addition, information related to the amount of data transferred from the information source to the system for performing the image forming operation can be provided to the system by the information source. Next, in a step 202 , the system creates a session identifier associated with the request to perform the imaging operation. Then, in a step 204 , the system sends information related to the session identifier to the information source. Next, in a step 206 , the information source determines a hash value of the data corresponding to the image generated using the imaging device. The hash function used can be any of the possible types of hash functions, such as. B. the MDS hash function. Then, in step 208 , the information source performs an encryption operation on the data corresponding to the image that is created to form encrypted data. The encryption operation uses the information related to the session identifier.

Next, in a step 210 , the information source sends the hash value and the encrypted data to the system. Then in a step 212 , the system decrypts the encrypted data to generate decrypted data using the session identifier. Next, in a step 214 , the system determines a hash value of the decrypted data. Then in a step 216 (shown in FIGS . 2A and 2B as 216a and 216b) the system compares the hash value determined by the system using the decrypted data and the hash value obtained from the information source the communication channel was received. If the hash determined by the system matches the hash received from the information source over the communication channel, the image is generated in a step 218 using the imaging device and the decrypted data. However, if the hash value determined by the system does not match the hash value received from the information source over the communication channel, the decrypted data is discarded in a step 220 .

In the operation of the embodiment of the security system that corresponds to FIGS. 2A and 2B, the transfer of the encrypted data between the information source and the system is explained in the context of transferring data that corresponds to an entire image. It should be appreciated that this embodiment of the data security system, as well as the other disclosed embodiments, could act in an alternative manner. Some imaging devices have limited storage capacity for storing data received from an information source. For these types of imaging devices, the transfer of encrypted data corresponding to an image can be segmented and transferred by multiple transfers with a size that fits into the available memory in the imaging device. Transfer of successive segments could occur when memory space becomes available in the imaging device because processing has been performed on at least a portion of the previous segment stored in the memory. The encryption performed by the information source using the information related to the session identifier is performed on each of the segments. It is pointed out that the system could generate different session identifiers for the different segments that are transmitted between the information source and the system, or the system could generate a single session identifier for the transmission of all segments of the data corresponding to the image.

As shown in FIGS. 3A and 3B, a high level flow chart corresponding to a method of operation for a first embodiment of the security system. First, in a step 300, information device 100 sends a request for an imaging operation (either to computer 106 or imaging device 102 included in system 101 ) over communication channel 104 to perform an imaging operation. The request includes the public key of a public key / private key pair associated with the information device 100 and information related to an amount of data sent to the system 101 for creating an image on a medium , Next, in step 302 , the imaging device 102 generates a string associated with this specific request to perform an imaging operation. The string generated could be a so-called random string. A random string corresponds to a string that is generated regardless of the information it is used to encrypt. This means that the random string is not derived from the data that it will encrypt. The length of the string matches the number of units (e.g., bytes) of data that are sent to system 101 by information source 100 . The string is a type of session identifier because its composition is associated with the request to perform an imaging operation.

Then, in a step 304, one or both of the imaging device 102 and the computer 106 encrypts the string using the public key provided by the information source 100 . Next, in a step 306, the encrypted string is sent to the information source 100 over the communication channel 104 . Then, in a step 308 , the information source 100 decrypts the encrypted string using the private key of the information source 100 to obtain the string. Next, in a step 310, information source 100 determines the hash value of the data that corresponds to the image. Then, in a step 312 , the information source 100 performs an exclusive-OR between the data corresponding to the image and the string to generate the encrypted data. Next, in a step 314 , the information source 100 sends the encrypted data and the hash value of the data to the system 101 . Then, in a step 316 , the system 101 (either in the computer 106 or the imaging device 102 or both) decrypts the encrypted data received from the information source 100 by performing an OR operation between the encrypted data and the string to generate decrypted data. Next, in a step 318, system 101 (either in computer 106 or imaging device 102 or both) determines the hash value of the decrypted data. Then, in steps 320 a and 320 b, the hash value determined from the decrypted data is compared with the hash value of the data received from information source 100 . If they match, then in step 322 , the imaging device 102 creates an image on the media that corresponds to the decrypted data. If they do not match, the decrypted data is discarded in a step 324 .

The method disclosed in Figures 3A and 3B provides protection against playback type attacks. Consider the situation where information related to a previous imaging operation was intercepted during its transmission over communication channel 104 . The intercepted information includes the hash of the data sent for the imaging operation and the encrypted form of the data for the imaging operation. The party that intercepts the information wants access to the decrypted form of the data. However, the party does not have the ability to ward off the encryption scheme to retrieve the data in an unencrypted form. Thus, the party attempted to recover the data by requesting system 101 to perform an imaging operation using the intercepted hash and the intercepted encrypted form of the data. However, since system 101 creates a session identifier associated with the new request to perform an imaging operation that is different from the session identifier used in generating the intercepted encrypted data, the attempt is unlikely to be successful.

If the encrypted data is decrypted using the session identifier generated in response to the interceptor's request for an imaging operation, the decrypted data will be incomprehensible. The hash value of the incomprehensible decrypted data does not match the hash value intercepted by the party and delivered to system 101 . Thus, applying the method disclosed in Figures 3A and 3B to the intercepted hash and the encrypted data reduces the likelihood that the intercepting party will have access to the data.

In Figs. 4A and 4B is shown a high level flow chart corresponding to a method of operation for a second embodiment of the safety system. First, in a step 400 , the information source 100 sends a request to perform an imaging operation to the imaging device 102 (either directly or indirectly through the computer 106 ) over the communication channel 104 . The request includes the public key of a public key / private key pair associated with the information source 100 and information related to the amount of data sent to the system 101 for creating an image on the medium , Next, in step 402, imaging device 10 .2 generates a string associated with this specific request to perform an imaging operation. The length of the string is not required to match the number of units (e.g., bytes) of data that are sent to the system 101 by the information source 100 . The string is a type of session identifier.

Then, either the imaging device 102 or the computer 106 or both encrypts the string in a step 404 using the public key provided by the information source 100 . Next, in a step 406 , the encrypted string is sent to the information source 100 over the communication channel 104 . Then, in a step 408 , the information source 100 decrypts the encrypted string using the private key of the information source 100 to obtain the string. Then, in a step 410 , the information source 100 determines the hash value of the data that corresponds to the image. Then, in a step 412 , the information source 100 encrypts the data corresponding to the image using a symmetric encryption technique. Any of the possible types of symmetric encryption schemes can be used, e.g. B. DES, with the decrypted string used as the key to generate the encrypted data. In addition, the same string is used as the key to generate the decrypted data from the encrypted data. Next, in a step 414 , the information source 100 sends the encrypted data and the hash value of the data to the system 101 . Then in a step 416, system 101 (either in computer 106 or imaging device 102 or both) decrypts the encrypted data received from information source 100 using the string as the decryption key to decrypt data for the symmetric encryption scheme produce. Next, in a step 418, system 101 (either in computer 106 or imaging device 102 or both) determines the hash value of the decrypted data. Then, in steps 420 a and 420 b, the hash value determined from the decrypted data is compared with the hash value of the data received from information source 100 . If they match, then in step 422 , the imaging device 102 creates an image on a medium that corresponds to the decrypted data. If they do not match, the decrypted data is discarded in a step 424 .

The method disclosed in Figures 4A and 4B provides protection against playback type attacks. Consider the situation where information related to a previous imaging operation was intercepted during its transmission over communication channel 104 . The intercepted information includes the hash of the data sent for the imaging operation and the encrypted form of the data for the imaging operation. The party that intercepts the information wants access to the decrypted form of the data. However, the party does not have the ability to ward off the encryption scheme to retrieve the data in an unencrypted form. Thus, the party attempts to recover the data by requesting system 101 to perform an imaging operation using the intercepted hash and the encrypted form of the data. However, since system 101 creates a session identifier associated with the new request to perform an imaging operation that is different from the session identifier used in generating the intercepted encrypted data, the attempt will not be successful.

If the encrypted data is decrypted using the session identifier generated in response to the intercepting party's request for an imaging operation as the decryption key, the decrypted data is incomprehensible. The hash value of the incomprehensible decrypted data does not match the hash value intercepted by the party and delivered to system 101 . Thus, applying the method disclosed in Figures 4A and 4B to the intercepted hash and the encrypted data reduces the likelihood that the intercepting party will have access to the data.

In FIGS. 5A and 5B, there is shown a high level flow chart corresponding to a method of operation for a third embodiment of the security system. First, in a step 500, information device 100 sends a request to perform an imaging operation to system 100 (either computer 106 or imaging device 102 ) over communication channel 104 . The request includes information related to the amount of data that is sent to the system 101 for creating an image on a medium. Next, either the imaging device 102 or the computer 106 included in the system 101 , or both, in step 502, creates a public key / private key pair associated with this specific request to perform an imaging operation. The public key / private key pair acts as a type of session identifier.

Then, in step 504 , the public key is sent to the information source 100 over the communication channel 104 . Then, in a step 506, information source 100 encrypts the data corresponding to the image to be generated using the public key generated by system 101 and received therefrom. Next, in a step 508 , the information source 100 determines the hash value of the data that corresponds to the image. Next, in a step 510 , the information source 100 sends the encrypted data and the hash value of the data to the system 101 . Then, in a step 512 , the system 101 (either in the computer 106 or the imaging device 102 or both) decrypts the encrypted data received from the information source 100 using the private key of the public key / private key pair that is generated for the session , Next, in a step 514, system 101 (either in computer 106 or imaging device 102 or both) determines the hash value of the decrypted data. Then, in steps 516 a and 516 b, the hash value determined from the decrypted data is compared with the hash value of the data received from the information source 100 . If they match, then in step 518 , the imaging device 102 creates an image on the medium that corresponds to the decrypted data. If they do not match, the decrypted data is discarded in a step 520 .

The method disclosed in Figures 5A and 5B provides protection against playback type attacks. Consider the situation where information related to a previous imaging operation was intercepted during its transmission over communication channel 104 . The intercepted information includes the hash of the data sent for the imaging operation and the encrypted form of the data for the imaging operation. The party that intercepts the information wants access to the decrypted form of the data. However, the party does not have the ability to ward off the encryption scheme to retrieve the data in an unencrypted form. Thus, the party attempts to recover the data by requesting system 101 to perform an imaging operation using the intercepted hash and the encrypted form of the data. However, since system 101 creates a session identifier associated with the new request to perform an imaging operation that is different from the session identifier used in generating the intercepted encrypted data, the attempt is unlikely to be successful.

If the encrypted data is decrypted using the session identifier generated in response to the intercepting party's request for an imaging operation, the decrypted data is incomprehensible. The hash value of the incomprehensible decrypted data does not match the hash value intercepted by the party and delivered to system 101 . Thus, applying the method disclosed in Figures 5A and 5B to the intercepted hash and the encrypted data reduces the likelihood that the intercepting party will have access to the data.

Processor-executable instructions used to perform operations for one embodiment of the security system may be stored on one embodiment of a storage device. The embodiment of the storage device could include an embodiment of a computer readable medium. The computer readable medium could include a medium that is electrically, optically, magnetically, or electromagnetically readable. An embodiment of the computer readable medium could include a CD (CD = Compact Disk), a floppy disk, a disk in a hard disk drive, or a magnetic tape in a magnetic tape drive. As shown in FIG. 6 an embodiment of a computer-readable medium, such. B. a compact disk 600 , which has computer-executable instructions for operating an embodiment of the security system. Alternatively, the exemplary embodiment of the computer-readable medium could comprise a semiconductor memory. The processor executable instructions could be by physically delivering the computer readable memory to the end user or by allowing a user to download the program from a storage device, such as a computer. B. a hard drive, through a wide area network or local area network downloads.

Claims (33)

1. System ( 101 ) with the following features:
an information source ( 100 , 122 ) configured to generate encrypted information from information corresponding to an image using at least a portion of data and to generate a first hash value of the information;
an imaging system ( 101 , 102 , 124 ) configured to generate the data to form decrypted information from the encrypted information using at least a portion of the data to form a second hash from the decrypted information and form an image on a medium when the first hash matches the second hash; and
a communication channel ( 104 ) through which the encrypted information, the first hash value and at least part of the data move between the information source ( 100 , 122 ) and the imaging system ( 101 , 102 , 124 ). 2. The system of claim 1, wherein:
the information source ( 100 , 122 ) includes a configuration to send a public key to the imaging system over the communication channel ( 104 ) associated with a request to perform an imaging operation;
the data comprises a string; and
the imaging system ( 101 , 102 , 124 ) includes a configuration to generate an encrypted string using the public key and to send the encrypted string to the information source over the communication channel ( 104 ). 3. The system of claim 2, wherein:
the information source ( 100 , 122 ) includes a configuration to decrypt the string using a private key corresponding to the public key and a configuration to encrypt the information using symmetric encryption using the string; and
the imaging system ( 101 , 102 , 124 ) includes a configuration to decrypt the encrypted information using the string used for symmetric encryption. 4. The system of claim 2 or 3, wherein:
a size of the string corresponds to a set of information;
the information source ( 100 , 122 ) includes a configuration to decrypt the string using a private key that corresponds to the public key; and
the information source includes a configuration to encrypt the information by performing an OR operation between the string and the information. 5. The system of claim 4, wherein:
the imaging system ( 101 , 102 , 124 ) includes a configuration to decrypt the encrypted information by performing an exclusive-OR operation between the string and the encrypted information; and
the imaging system includes a configuration to generate an image that corresponds to the decrypted information when the first hash is equal to the second hash. 6. System according to one of claims 1 to 5, in which:
the data includes a public key and a private key that corresponds to the public key; and
the imaging system ( 101 , 102 , 124 ) includes a configuration to send the public key to the information source ( 100 , 122 ) in response to a request to perform an imaging operation. 7. The system of claim 6, wherein:
the information source ( 100 , 122 ) includes a configuration to form the encrypted information using the public key; and
the imaging system includes a configuration to decrypt the encrypted information using the private key. 8. Procedure with the following steps:
Generating ( 202 , 302 , 402 , 502 ) data with an imaging system ( 101 , 102 , 124 ) in response to a request ( 200 , 300 , 400 , 500 ) from an information source ( 100 , 122 );
Decrypting ( 212 , 316 , 416 , 512 ) encrypted information received from the information source ( 100 , 122 ) using the imaging system ( 101 , 102 , 124 ) and at least a portion of the data to form decrypted information;
Forming ( 214 , 318 , 418 , 514 ) a second hash from the decrypted information using the imaging system ( 101 , 102 , 124 ); and
Generating ( 218 , 322 , 422 , 518 ) an image on a medium using the decrypted information if the second hash value is equal to a first hash value received from the information source ( 100 , 122 ) ( 216 B , 320 B, 420 B, 516 B). 9. The method of claim 8, further comprising the steps of:
if the data uses a string, encrypting ( 304 , 404 ) the string with the imaging system ( 101 , 102 , 124 ) using a public key received from the information source ( 100 , 122 ) to form an encrypted string; and
Sending ( 306 , 406 ) the encrypted string to the information source ( 100 , 122 ). 10. The method of claim 9, wherein:
the information source ( 100 , 122 ) decrypts ( 308 , 408 ) the encrypted string using a private key corresponding to the public key to retrieve the string;
the information source forms the encrypted information by applying symmetric encryption to information corresponding to the image using the string ( 412 );
the information source ( 100 , 122 ) forms ( 410 ) the first hash value using the information; and
the information source ( 100 , 122 ) sends ( 414 ) the encrypted information and the first hash value to the imaging system ( 101 , 102 , 124 ). 11. The method of claim 10, wherein:
the string comprises a random string of information; and
decrypting the encrypted information includes using the random string used for symmetric encryption. 12. The method according to any one of claims 9 to 11, wherein:
the request ( 300 , 400 ) from the information source ( 100 , 122 ) displays an amount of the information corresponding to the image;
generating ( 202 , 302 , 402 , 502 ) the data comprises generating ( 302 , 402 ) the string having a length that matches the amount of information;
the information source ( 100 , 122 ) decrypts ( 308 , 408 ) the encrypted string using a private key corresponding to the public key to retrieve the string;
the information source ( 100 , 122 ) forms the encrypted information by performing an exclusive OR operation ( 312 ) between the information and the string;
the information source ( 100 , 122 ) forms the first hash value using the information ( 310 , 410 );
and
the information source ( 100 , 122 ) sends ( 314 , 414 ) the encrypted information and the first hash value to the imaging system (101, 102, 124). 13. The method of claim 12, wherein:
the string comprises a random string of information; and
decrypting the encrypted information includes performing an exclusive-OR between the encrypted information and the string. 14. The method according to any one of claims 8 to 13, further comprising the step of:
if the data includes a public key and a private key, sending the public key from the imaging system to the information source. 15. The method of claim 14, wherein:
the information source ( 100 , 122 ) forms the encrypted information from information corresponding to the image using the public key; and
the information source forms the first hash value using the information. 16. The method of claim 15, wherein:
decrypting the encrypted information includes using the private key. 17. The method according to any one of claims 8 to 16, wherein:
the imaging system includes an imaging device configured to generate the data, decrypt the encrypted information, form the second hash, and form the image on the medium. 18. The method according to any one of claims 8 to 16, wherein:
the imaging system includes a computing device to generate the data, decrypt the encrypted information and form the second hash value; and
the imaging system includes an imaging device configured to form the image on the medium. 19. An image forming device ( 102 , 122 ) with the following features:
an interface ( 116 ) arranged to receive encrypted data;
a memory ( 120 ) configured to store the encrypted data and the decrypted data;
a processing device ( 118 ) operatively associated with the memory ( 120 ) and configured to form the decrypted data from the encrypted data using a session identifier ( 212 , 316 , 416 , 512 ) responsive to a request ( 200 , 300 , 400 , 500 ), an image is generated that is configured to form a first hash value from the decrypted data ( 214 , 318 , 418 , 514 ) and that is configured to form the first hash Compare value with a second hash value formed from data used to form the encrypted data ( 216 B, 320 B, 420 B, 516 B); and
an image generation mechanism ( 112 ) coupled to the processing device ( 118 ) and configured to generate ( 218 , 322 , 422 , 518 ) an image corresponding to the decrypted data. 20. The image forming apparatus ( 102 , 122 ) according to claim 19, wherein:
the session identifier comprises a string;
the processing device ( 118 ) includes a configuration to form the decrypted data ( 416 ) from the encrypted data using the string used to symmetrically encrypt the data with the string; and
the processing device ( 118 ) includes a configuration to control the imaging mechanism ( 112 ) to generate ( 218 , 322 , 422 , 518 ) the image on the medium when the first hash is equal to the second hash ( 420 B) is. 21. The image forming device ( 102 , 122 ) according to claim 19 or 20, wherein:
the request ( 300 ) to generate the image; Includes information indicating a lot of the data;
the session identifier comprises a string that has a length that matches the amount of data;
the processing device ( 118 ) includes a configuration to form the decrypted data ( 316 ) from the encrypted data by performing an OR operation ( 316 ) between the encrypted data and the string; and
the processing device ( 118 ) includes a configuration to control the imaging mechanism ( 112 ) to generate ( 322 ) the image on the medium when the first hash is equal to the second hash ( 320B ) 22. The image forming device ( 102 , 122 ) according to any one of claims 19 to 21, wherein:
the session identifier comprises a public key and a private key;
the processing device ( 118 ) includes a configuration to form ( 512 ) the decrypted data using the private key; and
the processing device ( 118 ) includes a configuration to control the imaging mechanism ( 112 ) to generate the image on the medium when the first hash is equal to the second hash ( 516B ). 23. A system for generating an image using data from an information source ( 100 , 122 ), having the following features:
means for generating a session indicator in response to a request from the information source ( 100 , 122 );
means for decrypting encrypted data received from the information source;
means for generating a second hash value;
means for comparing a first hash value formed by the information source with the second hash value; and
means for generating the image on the medium using the data when the first hash is equal to the second hash. 24. System ( 101 ) for receiving transformed data relating to an image from a first computing device ( 100 ), having the following features:
a second computing device ( 101 ) comprising a memory ( 110 ) for storing the transformed data, the transformed data comprising encrypted data and a first hash value formed from data ( 206 , 310 , 410 , 508 ) which used to form the encrypted data and which includes a processing device ( 106 ) configured to generate decrypted data ( 212 , 316 , 416 , 512 ) from the encrypted data using a session indicator ( 202 , 302 , 402 , 502 ) generated by the processing device ( 106 ) and configured to determine ( 214 , 318 , 418 , 514 ) a second hash value using the decrypted data; and
an image generation device ( 102 , 122 ) coupled to the second computing device ( 101 ) and configured to generate an image on a medium using the decrypted data ( 218 , 322 , 422 , 518 ) provided by the second computing device ( 101 ) are sent if the first hash value is equal to the second hash value. 25. The system ( 101 ) of claim 24, wherein:
the session indicator comprises a public key and a private key generated in response to a request ( 500 ) by the first computing device ( 100 ) to generate the image; and
if the first computing device ( 100 ) is configured to generate the encrypted data from the data using the public key, the second computing device ( 101 ) includes a configuration to generate the decrypted data ( 512 ) using the private key and compare the first hash value with the second hash value ( 516 B) to determine whether the first hash value is equal to the second hash value. 26. The system ( 101 ) of claim 24, wherein:
the session indicator comprises a string of characters generated ( 402 ) in response to a request ( 400 ) by the first computing device ( 100 ) to generate the image; and
when the first computing device ( 100 ) is configured to generate ( 412 ) the encrypted data from the data with symmetric encryption using the string, the second computing device ( 101 ) includes a configuration to decrypt the encrypted data with the string ( 416 ), which is used for symmetric encryption, and to compare the first hash value with the second hash value ( 420 B) to determine whether the first hash value is equal to the second hash value. 27. The system ( 101 ) of claim 24, wherein:
the session indicator comprises a string generated ( 302 ) in response to a request ( 300 ) by the first computing device ( 100 ) to generate the image, a length of the string corresponding to an amount of the data; and
if the first computing device ( 100 ) is configured to generate the encrypted data from the data by performing an exclusive-OR operation ( 312 ) between the data and the string, the second computing device ( 101 ) includes a configuration to perform the decrypt encrypted data by performing an exclusive-OR operation ( 316 ) between the encrypted data and the string and compare the first hash value to the second hash value ( 320 B) to determine whether the first hash -Value is equal to the second hash value. 28. Storage device with the following features:
a computer readable medium; and processor executable instructions stored on the computer readable medium and configured to generate data using an imaging system in response to a request from an information source ( 100 , 122 ), configured to encrypt information received from the information source Decrypting the use of the imaging system and at least a portion of the data to form decrypted information, configured to form a second hash from the decrypted information using the imaging system, and configured to use an image on a medium generate the decrypted information when the second hash is equal to a first hash received from the information source ( 100 , 122 ). 29. The memory device of claim 28, wherein:
the data comprises a string; and
the computer-executable instructions include a configuration to encrypt the string with the imaging system using a public key received from the information source ( 100 , 122 ) to form an encrypted string and to send the encrypted string to the information source. 30. The memory device of claim 29, wherein:
the computer-executable instructions include a configuration to decrypt the encrypted information using the string used for symmetric encryption of the information. 31. The memory device of claim 29, wherein:
the computer-executable instructions include a configuration to generate the string having a length corresponding to an amount of the information and a configuration to perform the encrypted information by performing an OR operation between the encrypted information and the string to decrypt. 32. A memory device according to any one of claims 28 to 31, wherein:
the data includes a public key and a private key; and
the computer-executable instructions include a configuration to send the public key to the information source ( 100 , 122 ) and to decrypt the encrypted information using the private key. 33. Printer with the following features:
an interface ( 116 ) arranged to receive encrypted data;
a memory ( 120 ) configured to store the encrypted data and decrypted data;
a processing device ( 118 ) operatively associated with the memory ( 120 ) and configured to form the decrypted data from the encrypted data using a random data string responsive to a print request by performing an exclusive-OR operation is generated between the random string and the encrypted data, a size of the random string being equal to an amount of data used to form the encrypted data, wherein the processing device ( 118 ) is configured to have a first hash value is formed from the decrypted data and is configured to compare the first hash value with a second hash value formed from the data;
and
an image generation mechanism ( 112 ) coupled to the processing device ( 118 ) and configured to generate an image corresponding to the decrypted data on a medium.